In other occasions a user would be specifying the XML through a form or including it locally but the aim here is just to present the vulnerability. So far executions are only limited to client-sided exploitation.

XSLTProcessor::registerPHPFunctions

The fuction enables the usage of PHP alike functions as XSLT ones. However, they obey certain syntax which is the following: